CVE-2017-2277

EUVD-2017-11460
WG-C10 v3.0.79 and earlier allows an attacker to bypass access restrictions to obtain or alter information stored in the external storage connected to the product via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
Affected Products (NVD)
VendorProductVersion
sonywg-c10_firmware
𝑥
≤ 3.0.79
𝑥
= Vulnerable software versions
References
https://esupport.sony.com/US/p/news-item.pl?news_id=527&mdl=WGC10
https://jvn.jp/en/jp/JVN77412145/index.html
https://esupport.sony.com/US/p/news-item.pl?news_id=527&mdl=WGC10
https://jvn.jp/en/jp/JVN77412145/index.html